e183d7b21c74e8a200b373a5a442282f39eeff0dc390a2c543de642dab0d0d85 | Triage

Submit
Reports

Overview

overview

Static

static

e183d7b21c...85.exe

windows7-x64

e183d7b21c...85.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e183d7b21c74e8a200b373a5a442282f39eeff0dc390a2c543de642dab0d0d85.exe

Resource

win7-20220901-en

evasion persistence trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

e183d7b21c74e8a200b373a5a442282f39eeff0dc390a2c543de642dab0d0d85.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

e183d7b21c74e8a200b373a5a442282f39eeff0dc390a2c543de642dab0d0d85
Size

367KB
MD5

c3320a9dfa26406ed0cd8138676620ea
SHA1

00f971954967fdfed57c6bf47683be5ce7e48811
SHA256

e183d7b21c74e8a200b373a5a442282f39eeff0dc390a2c543de642dab0d0d85
SHA512

9e2fee69d09b036d933cd2666de34fd776e0f919cc82689ef692251a26fb0661e172138b1f71b266b4f5e92441237502a0aeb782c387d92c75e6294339f32f6c
SSDEEP

6144:KuiJARMVfhrVf/DRauRHlwrFYaN5ino7241GtMqzIXPH8CV+mybPzKP3zUeXm9+r:xjRMfrpDneFNzino7IUHybPzQjUeX

Score

N/A

Malware Config

Signatures

Files

e183d7b21c74e8a200b373a5a442282f39eeff0dc390a2c543de642dab0d0d85
.exe windows x86

4891e95e1c74240aa3b931a78813be22

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomW
lstrlenW
EnumCalendarInfoW
FindClose
GetCurrentThreadId
GetModuleHandleA
GetNumberFormatW
GetCurrentProcessId
LocalFree
GetModuleFileNameA
EnterCriticalSection
GetDriveTypeW
ReadFile
TlsGetValue
GetPrivateProfileStringW
HeapCreate
SetLastError
ResumeThread
GetConsoleAliasW
SetEvent

user32

GetCursorInfo
GetKeyboardType
DrawTextW
SetFocus
CallWindowProcW
DispatchMessageA
GetClassInfoA
GetClientRect
GetMenuInfo
GetKeyState
DispatchMessageA
GetSysColor
IsWindow

wsnmp32

SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout
SnmpGetTimeout

msasn1

ASN1BERDecBool

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 357KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy